$ rpki-client -vvf rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft File: mWsZb8o8chhx7p4UE5Mri1DtCas.mft (raw, json) Hash identifier: pXzVPmyVswUT/Iv94nheF41c+6+/08O9f1IYSexnXfg= Subject key identifier: 9A:32:90:47:A4:0F:D5:B1:25:27:A9:C0:90:BC:46:BD:86:26:2D:A9 Authority key identifier: 99:6B:19:6F:CA:3C:72:18:71:EE:9E:14:13:93:2B:8B:50:ED:09:AB Certificate issuer: /CN=A91164D3/serialNumber=996B196FCA3C721871EE9E1413932B8B50ED09AB Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWsZb8o8chhx7p4UE5Mri1DtCas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft Manifest number: DA Signing time: Sat 23 Aug 2025 05:41:11 +0000 Manifest this update: Sat 23 Aug 2025 05:41:10 +0000 Manifest next update: Sat 30 Aug 2025 05:41:10 +0000 Files and hashes: 1: mWsZb8o8chhx7p4UE5Mri1DtCas.crl (hash: m/EkmScxnsPBCSHmr0U4QVcu7CSuuB42GSL8oNujCb0=) 2: 934F8250338A11EFB9C7A738C4F9AE02.roa (hash: FWDEQfcrySfMIWIlPkoTcMajRo2lEM/ZyKql4949RJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.crl rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWsZb8o8chhx7p4UE5Mri1DtCas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:41:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91164D3, serialNumber=996B196FCA3C721871EE9E1413932B8B50ED09AB Validity Not Before: Aug 23 05:41:10 2025 GMT Not After : Aug 30 05:41:10 2025 GMT Subject: CN=68a95476-f003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:cd:19:e8:6a:87:02:3a:0d:0d:5c:ff:4d:04: 5c:8b:50:75:ba:ae:c2:7f:d1:31:e4:13:f9:d2:37: f0:3d:30:eb:9e:02:21:ca:08:0f:1e:ef:68:fa:54: c8:12:aa:c6:aa:36:87:f2:1f:5a:8b:88:14:48:01: c8:ae:f9:dc:47:f0:14:55:e0:6e:46:ab:c7:03:12: 15:a6:9b:70:7c:b7:59:07:32:ed:8c:6f:42:a0:35: df:60:c8:9c:d6:d4:77:ee:3b:b5:d9:00:5e:15:80: a6:4b:88:ec:a8:df:e9:21:da:28:8c:f4:50:12:80: 8f:04:be:f9:32:7e:f1:d1:e7:ac:19:72:08:84:00: 21:e6:04:06:19:e5:0f:74:78:a1:1b:ae:e5:f8:7b: 16:aa:2d:a0:ae:28:fa:a8:00:3e:48:55:db:f0:d8: dd:f9:78:c0:79:74:c6:f1:9d:e8:ff:40:0f:48:37: 6b:3b:a0:84:12:4e:16:e6:f1:42:76:63:5b:d6:68: 02:1c:b5:97:0f:d9:6d:44:1c:f0:19:8c:17:a4:c3: 32:b6:31:8e:2b:9c:84:60:58:76:45:60:63:bd:b1: 68:0a:0e:e4:dd:d9:1c:4b:69:b4:2d:8b:7a:d9:49: 13:78:77:37:d5:1c:db:d9:3e:af:95:d2:10:c2:af: bc:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:32:90:47:A4:0F:D5:B1:25:27:A9:C0:90:BC:46:BD:86:26:2D:A9 X509v3 Authority Key Identifier: keyid:99:6B:19:6F:CA:3C:72:18:71:EE:9E:14:13:93:2B:8B:50:ED:09:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWsZb8o8chhx7p4UE5Mri1DtCas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:40:6f:d3:b8:8a:4c:7a:2c:1f:6e:4e:f6:a7:c7:a6:49:c1: 15:fc:07:e6:5f:9d:1f:32:c2:63:85:e8:d0:17:ce:7f:65:9c: 19:95:3e:0a:e1:eb:71:80:2f:5b:d7:68:32:bc:20:e6:d7:20: db:43:58:2e:88:e1:45:ea:a8:94:c5:03:20:19:ee:a9:ab:ba: 31:f5:eb:a2:73:35:b4:2c:cd:df:85:b9:7d:42:d5:1e:81:6f: 8b:ba:2a:6d:52:fb:41:4d:1f:df:fa:56:e8:e2:34:da:9d:00: c5:08:71:be:6b:fb:90:2d:6f:c1:a3:f9:2c:21:85:1b:a9:14: db:d3:2c:97:9d:a4:cc:85:ab:3f:2d:ab:ac:91:63:9b:0a:e7: 53:24:1a:3d:48:cd:05:a0:96:ad:1f:45:f7:cd:46:89:36:be: 94:dc:1c:74:42:ba:bc:3c:c4:3f:a9:02:3e:6d:91:e3:bb:fa: 7f:b9:79:63:24:85:bb:c3:f3:78:70:23:af:8f:ec:b7:72:c9: 73:32:26:2d:05:49:93:c3:b6:97:03:37:84:de:dc:62:71:f2: c6:87:8e:0e:22:13:7d:d4:91:a4:3b:2b:ea:37:6a:98:3a:1f: 68:b4:b5:d0:4e:cf:14:6e:2f:80:a7:a6:b1:74:ad:46:f4:a6: da:f1:f1:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0RDMxMTAvBgNVBAUTKDk5NkIxOTZGQ0EzQzcyMTg3MUVFOUUxNDEzOTMyQjhC NTBFRDA5QUIwHhcNMjUwODIzMDU0MTEwWhcNMjUwODMwMDU0MTEwWjAYMRYwFAYD VQQDEw02OGE5NTQ3Ni1mMDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqc0Z6GqHAjoNDVz/TQRci1B1uq7Cf9Ex5BP50jfwPTDrngIhyggPHu9o+lTI EqrGqjaH8h9ai4gUSAHIrvncR/AUVeBuRqvHAxIVpptwfLdZBzLtjG9CoDXfYMic 1tR37ju12QBeFYCmS4jsqN/pIdoojPRQEoCPBL75Mn7x0eesGXIIhAAh5gQGGeUP dHihG67l+HsWqi2grij6qAA+SFXb8Njd+XjAeXTG8Z3o/0APSDdrO6CEEk4W5vFC dmNb1mgCHLWXD9ltRBzwGYwXpMMytjGOK5yEYFh2RWBjvbFoCg7k3dkcS2m0LYt6 2UkTeHc31Rzb2T6vldIQwq+8UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoykEek D9WxJSepwJC8Rr2GJi2pMB8GA1UdIwQYMBaAFJlrGW/KPHIYce6eFBOTK4tQ7Qmr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjREMy8xNTUwNDhFQTMz ODkxMUVGOTlGRDFDMjdDNEY5QUUwMi9tV3NaYjhvOGNoaHg3cDRVRTVNcmkxRHRD YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21Xc1piOG84Y2hoeDdwNFVFNU1yaTFEdENhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjREMy8xNTUwNDhFQTMzODkxMUVGOTlGRDFDMjdDNEY5QUUwMi9tV3NaYjhvOGNo aHg3cDRVRTVNcmkxRHRDYXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNQG/TuIpMeiwfbk72p8emScEV/AfmX50fMsJjhejQF85/ZZwZlT4K 4etxgC9b12gyvCDm1yDbQ1guiOFF6qiUxQMgGe6pq7ox9euiczW0LM3fhbl9QtUe gW+LuiptUvtBTR/f+lbo4jTanQDFCHG+a/uQLW/Bo/ksIYUbqRTb0yyXnaTMhas/ LauskWObCudTJBo9SM0FoJatH0X3zUaJNr6U3Bx0Qrq8PMQ/qQI+bZHju/p/uXlj JIW7w/N4cCOvj+y3cslzMiYtBUmTw7aXAzeE3txicfLGh44OIhN91JGkOyvqN2qY Oh9otLXQTs8Ubi+Ap6axdK1G9Kba8fGL -----END CERTIFICATE-----Generated at Sun Aug 24 01:02:51 2025 by rpki-client